MatchMode doesn't escape wildcard characters
--------------------------------------------

          Key: HHH-3420
          URL: http://opensource.atlassian.com/projects/hibernate/browse/HHH-3420
        Project: Hibernate3
      Issue Type: Bug
      Components: query-criteria
  Affects Versions: 3.2.2
     Environment: MySQL
       Reporter: Hontvári József
       Priority: Minor


One can think that by specifying e.g. MatchMode.START in a "like" restriction Hibernate takes care of escaping SQL LIKE wildcard characters in the supplied pattern. It doesn't, actually Hibernate only inserts a % before the first character.

I am not sure what was the intent of the original author (Gavin King), so the issue may only be missing documentation. However I don't see any other useful purpose of this class then providing database independent escaping. It seems that all databases use the % wildcard, so there is no need to provide database indpeendence to that.

It can be argued that this might create a security problem for an unaware developer, so I set issue type to bug.

--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://opensource.atlassian.com/projects/hibernate/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

   

_______________________________________________
hibernate-issues mailing list
hibernate-issues@(protected)
https://lists.jboss.org/mailman/listinfo/hibernate-issues